If you survived the frothy clamor of RSAC16 you certainly left confused by the breathless promises of the 600 or so would-be cybercorns on the show floor. The security industry has reached a new crisis point: We are out of words! The security lexicon is exhausted so vendors are making ever more absurd claims. My favorites: “Machine Learning allows […]

Just yesterday McAfee Labs reported macro malware hiding payload in text forms. That same day we found a sample fetching its payload from GitHub. As usual the attack starts with a spam email with the attachment named: <organization name>’s_Overdue Invoice_(007-153315).doc Pretty nice name, some people may actually buy this as it isn’t any generic random name […]

Disruptive attacks against individuals and organizations are rapidly rising, as was noted in recent security reports (Mandiant, A Fireeye Company, 2016). As an example, ransomware has been a big problem. As we look at customer security alerts we note that ransomware could have been a problem for our clients as well. Thus, we decided to compare […]

Another RSA Conference is in the books and with it concludes Bromium’s annual State of Security Survey. The size of RSA Conference 2016 echoed the continued growth of the security industry with more than 500 companies exhibiting. There were many conversations about many security threats and solutions; of course, Apple and the FBI have been […]